Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/GwMMBynjbIWWDkmQQmEkS1yZ-p8.roa
File: GwMMBynjbIWWDkmQQmEkS1yZ-p8.roa (raw, json)
Hash identifier: mXBrzDrXUV3kdWV1C2iIcitJx95X4iMYMfi2SNVZYDE=
Subject key identifier: 1B:03:0C:07:29:E3:6C:85:96:0E:49:90:42:61:24:4B:5C:99:FA:9F
Certificate issuer: /CN=bc4f1e6b011f4d6331a127955a548fa5052580a5
Certificate serial: 12074E93
Authority key identifier: BC:4F:1E:6B:01:1F:4D:63:31:A1:27:95:5A:54:8F:A5:05:25:80:A5
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/vE8eawEfTWMxoSeVWlSPpQUlgKU.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/GwMMBynjbIWWDkmQQmEkS1yZ-p8.roa
Signing time: Sat 01 Jan 2022 04:04:27 +0000
ROA not before: Sat 01 Jan 2022 04:04:27 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 44400
IP address blocks: 185.128.164.0/22 maxlen: 22
Validation: Failed, certificate has expired
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 302468755 (0x12074e93)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=bc4f1e6b011f4d6331a127955a548fa5052580a5
Validity
Not Before: Jan 1 04:04:27 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=1b030c0729e36c85960e49904261244b5c99fa9f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:c3:aa:0f:7a:e5:11:1d:14:fe:c2:6c:41:34:e7:
ea:c0:24:35:c0:1f:ba:c4:80:61:58:22:1b:e0:43:
58:11:b2:6c:75:2b:d2:d0:e7:d4:b8:f6:d9:f5:fa:
f3:9e:89:8a:64:96:be:e0:e9:45:40:26:75:f5:24:
b9:26:0d:c4:79:0d:e5:fc:fd:f5:97:b7:c5:20:b5:
40:e2:13:cf:d6:a0:dd:1d:71:69:bd:a6:80:ef:84:
95:9a:32:39:0d:27:84:9c:87:1e:bc:f7:4b:60:54:
46:6a:80:38:81:a2:e3:4c:71:fd:bc:09:78:c1:09:
9e:c3:ad:88:c4:05:c4:99:d2:5d:3f:f6:46:f4:e5:
5b:6b:63:9f:ea:1d:68:71:f4:64:7a:fa:1b:f9:6e:
1f:d3:8f:73:d2:d6:5f:c5:7c:1f:80:4c:60:45:34:
e8:04:66:33:45:85:1c:c6:e2:84:fb:9c:31:18:ed:
0c:f9:0e:bc:c6:a3:a1:1a:3e:c7:79:6f:bb:ca:c1:
18:2e:77:7e:27:03:a6:28:3b:0a:dc:f7:cf:6c:44:
41:c3:8c:50:78:5a:d0:cd:c3:4d:9f:db:b8:6c:1e:
8f:13:a9:2f:1e:31:87:77:dc:20:44:a8:46:95:52:
c8:3f:c9:5d:f2:8b:e9:11:fd:77:4c:66:b9:3e:32:
34:2d
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
1B:03:0C:07:29:E3:6C:85:96:0E:49:90:42:61:24:4B:5C:99:FA:9F
X509v3 Authority Key Identifier:
keyid:BC:4F:1E:6B:01:1F:4D:63:31:A1:27:95:5A:54:8F:A5:05:25:80:A5
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/vE8eawEfTWMxoSeVWlSPpQUlgKU.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/GwMMBynjbIWWDkmQQmEkS1yZ-p8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/1f/66a237-9bc5-4abd-9b8b-c55476759d0c/1/vE8eawEfTWMxoSeVWlSPpQUlgKU.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
185.128.164.0/22
Signature Algorithm: sha256WithRSAEncryption
0a:cc:55:b4:8a:96:6c:0d:83:6e:1a:cc:4c:56:26:1d:d6:43:
63:83:76:1c:cf:5d:45:06:5c:df:35:00:ba:fc:6a:06:75:7b:
59:ae:d4:23:91:27:b2:d1:59:9e:ae:75:1a:72:e8:96:b9:7d:
93:de:a9:46:31:fa:61:44:dc:19:56:fd:59:93:49:c0:34:b0:
9c:81:83:8e:00:4d:45:9c:83:5e:e0:31:b5:e3:01:b8:9c:96:
7f:22:2a:12:7a:c9:a0:79:27:57:8b:e8:1d:fb:73:ed:95:d1:
93:8f:4f:ea:fb:5f:72:a9:46:37:cf:3b:12:4c:77:6d:05:2c:
e8:e0:2f:aa:15:da:69:0b:35:16:9d:c3:2f:1c:90:64:95:56:
40:7e:75:69:df:d0:da:b2:8b:e5:a7:17:20:88:f9:00:8e:d3:
3f:04:64:ab:33:00:23:48:c0:c6:5a:0a:93:71:5e:6a:07:39:
27:47:9f:ae:64:48:4c:6d:c2:c5:42:7c:dc:ae:e5:05:3a:c8:
d3:11:96:78:93:ef:7b:6a:93:28:b8:af:ea:45:eb:85:e6:b7:
65:44:e4:bf:d1:6d:56:f8:7a:07:d3:5a:85:ad:47:50:bb:ac:
fa:03:7d:ef:1b:58:f4:f8:6d:5e:42:e1:6e:cb:34:4b:7a:11:
0d:26:7c:27
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Wed Jul 19 23:45:05 2023 by rpki-client on console-fra.rpki-client.org